From 85c2d5a478008cfa9030e1bddc23fa91e232a573 Mon Sep 17 00:00:00 2001
From: George Goldberg <george@gberg.me>
Date: Thu, 4 May 2017 22:21:28 +0100
Subject: PLT-6393: Fix Websocket CORS header check. (#6335)

---
 utils/api.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'utils/api.go')

diff --git a/utils/api.go b/utils/api.go
index 55f84ef92..663f53c16 100644
--- a/utils/api.go
+++ b/utils/api.go
@@ -15,7 +15,7 @@ type OriginCheckerProc func(*http.Request) bool
 
 func OriginChecker(r *http.Request) bool {
 	origin := r.Header.Get("Origin")
-	return *Cfg.ServiceSettings.AllowCorsFrom == "*" || strings.Contains(origin, *Cfg.ServiceSettings.AllowCorsFrom)
+	return *Cfg.ServiceSettings.AllowCorsFrom == "*" || strings.Contains(*Cfg.ServiceSettings.AllowCorsFrom, origin)
 }
 
 func GetOriginChecker(r *http.Request) OriginCheckerProc {
-- 
cgit v1.2.3-1-g7c22